JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.39.77

104.207.39.77 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.39.77

Whois 104.207.39.77

IP Abuse Reports for 104.207.39.77:

This IP address has been reported a total of 151 times from 27 distinct sources. 104.207.39.77 was first reported on June 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇰 RhQM	2026-06-15 05:20:12 (1 week ago)		Bad Web Bot Exploited Host Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-04 13:27:25 (3 weeks ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 77.39.207.104.rbl.malwa ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 77.39.207.104.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3) show less	Hacking
🇺🇸 nowyouknow	2026-03-05 13:12:29 (3 months ago)	(From [email protected]) If you have a smartphone and know how to use Facebook or Twitter, you ... show more (From [email protected]) If you have a smartphone and know how to use Facebook or Twitter, you might be sitting on a "hidden" income stream. Businesses are desperate for remote workers to help them stay social. They’ll pay you to do the simple stuff they don't have time for. ----> https://SocialChatJobs.Online Take this 1-minute quiz to see how much you could earn. It’s fun, it’s fast, and it might just be the easiest side hustle you've ever started. Get your results here. Cheers, https://SocialChatJobs.Online show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-03-05 11:25:34 (3 months ago)	(From [email protected]) No experience is necessary and full training is provided. But ... show more (From [email protected]) No experience is necessary and full training is provided. But before you apply, you need to see which role you’re best suited for. Go here to take the Writing Job Quiz. ---> http://PaidToWrite.Online/ Once you finish the quiz, you’ll get a breakdown of the best opportunities available for you right now. Visit -----> http://PaidToWrite.Online/ show less	Phishing Web Spam
🇦🇺 MAGIC	2026-02-19 00:42:15 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 dynamix	2026-01-17 01:47:39 (5 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 11:55:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 06:55:05.636052 2025] [security2:error] [pid 21367:tid 21367] [client 104.207.39.77:24887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greenanvilfarrier.com"] [uri "/.svn/wc.db"] [unique_id "aTa8mTjPb5wSdDTZ6AFACQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 16:31:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 11:31:08.050723 2025] [security2:error] [pid 29058:tid 29058] [client 104.207.39.77:35401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adventiststoday.org"] [uri "/.env"] [unique_id "aTWrzDRwRCsfLSQ-mdZUhgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-07 14:17:33 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-07 13:42:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:42:44.723240 2025] [security2:error] [pid 1919:tid 1919] [client 104.207.39.77:9741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "itre.org"] [uri "/.env"] [unique_id "aTWEVIhK4H_wIO5IM5Jg6wAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:58:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:58:07.847350 2025] [security2:error] [pid 25711:tid 25711] [client 104.207.39.77:16983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ablg.net"] [uri "/.git/HEAD"] [unique_id "aTQaT9mfhyl15BhrZ-idPgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:55:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:55:33.160299 2025] [security2:error] [pid 4353:tid 4359] [client 104.207.39.77:23189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "resort4pets.com"] [uri "/.env"] [unique_id "aTKeBZXroBTGTA2_DJH3UQAAAIQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:12:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:12:27.492891 2025] [security2:error] [pid 28460:tid 28460] [client 104.207.39.77:10337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cspminc.com"] [uri "/.env"] [unique_id "aTKT614ffaVa5npV0l_9MAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:42:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:42:40.184993 2025] [security2:error] [pid 26561:tid 26561] [client 104.207.39.77:32807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thepotteriesmesilla.com"] [uri "/.env"] [unique_id "aTJiwNI0njF25q3yGMO8tQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:43:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:43:05.480228 2025] [security2:error] [pid 5498:tid 5510] [client 104.207.39.77:35449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gmentz.com"] [uri "/.svn/wc.db"] [unique_id "aTJGuW7X3fCXD5Yl2i57LQAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 165.154.227.158

🇺🇸 162.216.150.225

🇺🇸 147.185.132.83

🇰🇬 95.87.66.183

🇮🇳 13.234.53.25

🇫🇮 147.185.133.97

🇷🇴 80.94.92.55

🇧🇬 78.128.112.30

🇮🇳 49.34.209.148

🇦🇺 45.132.224.76

🇷🇺 178.64.115.68

🇺🇸 155.2.215.35

🇰🇷 119.203.251.187

🇫🇷 85.217.140.24

🇮🇳 59.144.79.102

🇫🇮 35.228.124.187

🇬🇧 35.203.210.143

🇺🇸 34.194.233.48

🇺🇸 31.59.40.94

🇻🇳 27.71.230.31